vb.org Archive
Page 8 of 11 « First 67 8 910 Last »
Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vBulletin 3.6 Add-ons (https://vborg.vbsupport.ru/forumdisplay.php?f=194)
-   -   Forum Home Enhancements - [AJAX] Websites who have referred today (in the last 24 hours) (https://vborg.vbsupport.ru/showthread.php?t=137792)

silverleaf 11-11-2007 08:19 PM
Found this today on my forum home...

WTF?

Is this a VB issue or is it specific to this template hack?

RedTyger 11-11-2007 08:31 PM
See https://vborg.vbsupport.ru/showpost....&postcount=263.

Sorry everyone if there are problems, I don't have time at the minute to go through them, I'll see if I can do something during the week.

rwilkins108 11-13-2007 12:15 PM
Quote:
Originally Posted by silverleaf (Post 1380552)
Found this today on my forum home...

WTF?

Is this a VB issue or is it specific to this template hack?
I just got the same thing, doesn't look like anything's really been hacked on my system, just the big blue letters... Anyway, I've uninstalled for now.

edit: I see in the history that 1.61 had a possible fix for the referrer issue, just to let you know, the first version I installed was 1.61, so that's a no go...

This is what the hacker wrote:
HACKED by BondTravolta - Turk Emper0r - HACKURITY TEAM! VBULLETIIN! LISTEN TO ME! CLOSE THIS SECURITY BUG! HACKED HACKED HACKED HACKED HACKED HACKED HACKED HACKED HACKED HACKED HACKED HACKED HACKED HACKED< (2)

rwilkins108 11-13-2007 12:18 PM
Quote:
Originally Posted by RedTyger (Post 1380558)
See https://vborg.vbsupport.ru/showpost....&postcount=263.

Sorry everyone if there are problems, I don't have time at the minute to go through them, I'll see if I can do something during the week.
I read through that and see that it's just the referrer, but how did they get the text to be so big, do they just put html in the referrer text?

class101 11-13-2007 12:35 PM
you can copy paste your footer source guys and apache logs of theses requests.

class101 11-13-2007 12:53 PM
I think I see what is wrong,

PHP Code:
                    // Get the title from the referrer
                    $referrer_title = @fopen("http://" $referred ""r);
                    if ($referrer_title)
                    {
                        $page '';
                        while(!feof($referrer_title))
                        {
                            $title fgets($referrer_title100);
                            $page .= $title;
                        } 
They have probably faked the referer with a simple

GET / HTTP/1.0
Referer: blabla hacked shits


no?

class101 11-13-2007 01:03 PM
it appear to be these glitch, I have tested with the firefox addon

https://addons.mozilla.org/en-US/firefox/addon/953

then add your custome referrer and that will display hacked stuffs .. nothing really critical but to patch :)

Btw I have tested to input <script>alert('');</script> as a referrer and I get strange bugs, you may check the issue quickly redtyger, looks much critical than expected, I will disable mine so.
useful to say:
DO NOT INSTALL v1.61 IT HAS A SECURITY ISSUE!

Artes_Marciales 11-19-2007 10:32 AM
Quote:
Installation Instructions:
1. Go to AdminCP > Plugins & Products > Manage Products > Add/Import Product.
2. Upload the websites_who_have_referred_today.xml file.
3. Upload the wwhrt.php file to the includes/cron folder of your forum directory.
4. Open AdminCP > Styles & Templates > (Your Theme) Edit Templates > Forumhome templates > FORUMHOME.
Sorry...
where I find that file wwhrt.php.

Thanks! :)

Fungsten 11-19-2007 05:20 PM
Installed. Question: I have another Admin account that I want to be ablr to remove the referrals. I've tried to change the code in:

Quote:
<if condition="$bbuserinfo['usergroupid'] == '6'"> (<a href="index.php?$session[sessionurl]do=kill_all_referrers">$vbphrase[referrers_kill_all]</a>)</if>
to include the usergroup for the other Admin account. However, when trying to delete the referrals using that account only the "Remove Referrals" appears but none of the referrals are removed. Do you have any reasons why this may happen? Thank you.

class101 11-19-2007 05:25 PM
cool 1.62 out nice job redtyger fixing the issue

rolfw1 11-19-2007 05:36 PM
Thanks for the update, much appreciated. :)

joshbond 11-19-2007 05:39 PM
Sorry if this has been covered already but I couldn't find it.

How do you upgrade this product to the latest version?

thanks.

Fungsten 11-19-2007 05:44 PM
Quote:
Originally Posted by joshbond (Post 1385724)
Sorry if this has been covered already but I couldn't find it.

How do you upgrade this product to the latest version?

thanks.
I uploaded the .php file and re-imported the product. Check overwrite to re-import.

joshbond 11-19-2007 06:08 PM
Quote:
Originally Posted by Fungsten (Post 1385727)
I uploaded the .php file and re-imported the product. Check overwrite to re-import.
there is only an .xml file in the download though?

What php file?

Fungsten 11-19-2007 06:19 PM
Quote:
Originally Posted by joshbond (Post 1385742)
there is only an .xml file in the download though?

What php file?
I have the wwhrt.php in the includes/cron folder.

Wulfnoth 11-19-2007 06:31 PM
i still get this error on top of the page:

Quote:
Warnung: mysql_num_rows(): supplied argument is not a valid MySQL result resource in /index.php(537) : eval()'d code (Zeile 66)

RFViet 11-20-2007 06:30 PM
Thanks

virus9112002 11-20-2007 09:18 PM
Thanks, Updated

silverleaf 11-21-2007 02:45 AM
This is great for tracking clicks from marketing campaigns.

you rock.

TerryMason 11-22-2007 05:12 PM
The mod rocks, but I keep getting errors when I click on a link in an email (i.e. you get an email saying that there's a reply to your topic, and when you click the link it goes to a database error)

I've upgraded to 1.62 and still have this problem

Any ideas?


Code:

Database error in vBulletin 3.6.2:
 
Invalid SQL:
 
INSERT INTO referrers
(url, count)
VALUES
('by129w.bay129.mail.live.com%2Fmail%2FReadMessageLight.aspx%3FAux%3D4%257c0%257c8C9FB4880A2B7F0%257c%26amp%3BFolderID%3D00000000-0000-0000-0000-000000000001%26amp%3BInboxSortAscending%3DFalse%26amp%3BInboxSortBy%3DDate%26amp%3BReadMessageId%3D0f8f520e-874c-4708-9e76-da276fe0d771%26amp%3Bn%3D292943534', 1);
 
MySQL Error : Duplicate entry '%s' for key 1
Error Number : 1062
Date : Thursday, November 22nd 2007 @ 01:52:19 PM
Script : http://www.XXXXX.com/forum/showthread.php?t=21548&goto=newpost
Referrer : http://by129w.bay129.mail.live.com/mail/ReadMessageLight.aspx?Aux=4%7c0%7c8C9FB4880A2B7F0%7c&FolderID=00000000-0000-0000-0000-000000000001&InboxSortAscending=False&InboxSortBy=Date&ReadMessageId=0f8f520e-874c-4708-9e76-da276fe0d771&n=292943534
IP Address : 68.X.X.X
Username : XXXXXX
Classname : vb_database

joethaman 11-26-2007 12:52 AM
Quote:
Originally Posted by TerryMason (Post 1387612)
The mod rocks, but I keep getting errors when I click on a link in an email (i.e. you get an email saying that there's a reply to your topic, and when you click the link it goes to a database error)

I've upgraded to 1.62 and still have this problem

Any ideas?


Code:

Database error in vBulletin 3.6.2:
 
Invalid SQL:
 
INSERT INTO referrers
(url, count)
VALUES
('by129w.bay129.mail.live.com%2Fmail%2FReadMessageLight.aspx%3FAux%3D4%257c0%257c8C9FB4880A2B7F0%257c%26amp%3BFolderID%3D00000000-0000-0000-0000-000000000001%26amp%3BInboxSortAscending%3DFalse%26amp%3BInboxSortBy%3DDate%26amp%3BReadMessageId%3D0f8f520e-874c-4708-9e76-da276fe0d771%26amp%3Bn%3D292943534', 1);
 
MySQL Error : Duplicate entry '%s' for key 1
Error Number : 1062
Date : Thursday, November 22nd 2007 @ 01:52:19 PM
Script : http://www.XXXXX.com/forum/showthread.php?t=21548&goto=newpost
Referrer : http://by129w.bay129.mail.live.com/mail/ReadMessageLight.aspx?Aux=4%7c0%7c8C9FB4880A2B7F0%7c&FolderID=00000000-0000-0000-0000-000000000001&InboxSortAscending=False&InboxSortBy=Date&ReadMessageId=0f8f520e-874c-4708-9e76-da276fe0d771&n=292943534
IP Address : 68.X.X.X
Username : XXXXXX
Classname : vb_database
I am also getting the same error. I just installed the recent version yesterday.

onehost 11-26-2007 11:36 PM
Hello Red,

at one point i did have this hack on a past domain...a hacker somehow got
on the site, and posted his hacker msg in the referred website section, nothing
else on VB was touched, do you have any idea how this could have happened,
or have you gotten reports of this happening before i re-install?

Thanks
David

RedTyger 11-27-2007 06:25 AM
Yes, it was due to referrer spoofing. Basically instead of saying where you came from, its possible to make your browser give any other text instead. It's not a hack, its just a rather sad trick.

Delete the referrer and add to your blocklist as appropriate. It isn't harming your forum.

Re: The errors posted above, I'm sure I know what's causing them so when I've got a minute...

Fungsten 11-27-2007 06:28 PM
How do I exclude my own domain from being listed in the referrals? So at the bottom where it lists all the sites, my own site is being listed. Also when the Mod is activated the font changes in the "Current Active Users". TIA.

3.6.8.

demios 11-28-2007 10:34 PM
I have a problem, all referrers that domains start with a W have the first letter chopped off;

wildcamping.co.uk becomes ildcamping.co.uk

Any ideas?

Fungsten 11-29-2007 06:17 PM
Quote:
Originally Posted by demios (Post 1391334)
I have a problem, all referrers that domains start with a W have the first letter chopped off;

wildcamping.co.uk becomes ildcamping.co.uk

Any ideas?
That solution is somewhere in the thread. Can't remember which post though.

demios 12-01-2007 07:01 PM
Quote:
Originally Posted by Fungsten (Post 1391839)
That solution is somewhere in the thread. Can't remember which post though.
I have read the whole thread but cant find it :(

Rottimom 12-04-2007 11:15 AM
Hello

I have installed this Mod, it works very well.
However, I would like to make the shown web pages links anonymous at click and to with anonym.to but.
How can I realize this?

thefullmaza 12-09-2007 02:19 AM
thanks and Demo

nyunyu 12-14-2007 06:44 AM
Hi, Installed and working well in my forum.
Unfortunately last night I received some comments saying that the site has been hacked.
So, if you go to my thread here, you will see an attachment of what am i talking about.
Did by any chance this hack caused the problem?

Thanks

http://www.animeheist.com/forum/showthread.php?t=392

RedTyger 12-14-2007 06:52 AM
See this post. ktchris69 is quite correct, iNvid has no idea what he is talking about. :)

nyunyu 12-14-2007 06:56 AM
Yeah, as for iNvid, I didnt even bother to listen to what he said, actually he is one of the regular spammer there..lol
The reason I asked because i want to confirm with you that this hack doesnt provide a code flaw that permit something like this, no?

Btw, Thanks for the clarification. Good and VITAL hack I must say. :)

RedTyger 12-14-2007 07:05 AM
No, it's not a code flaw. In fact the <h1> at the beginning is because it is preventing them from using HTML as well, added in the last update (although the colouring does surprise me, if it happens again and you can let me know the source code for that referrer I'd be grateful). It's not a hack, they just changed a browser setting to that text.

nyunyu 12-14-2007 07:42 AM
If this happen again, I will get you onboard the forum so that you can investigate. Thats if you want to :)

nickypoooo 12-14-2007 12:21 PM
Great... thank you

ZomgStuff 01-19-2008 01:16 PM
Anyone else having problems with the CRON not auto reseting the list each day?

BadgerDog 01-19-2008 01:22 PM
Quote:
Originally Posted by ZomgStuff (Post 1424431)
Anyone else having problems with the CRON not auto reseting the list each day?
I did, then I changed the time to something other than default and it started working ... :)

Regards,
Badger

seangworld 01-22-2008 09:12 AM
fyi: this works for 3.7 too.

meissenation 01-24-2008 10:21 PM
Hey guys, I'm confusd... this is not trimming variables or trimming to the domain only. I have over 200 instances of google.com instead of google.com (200). WTH? Is it suppose to work like that?

Edit: Nevermind, the cron job wasn't running. Changed it to 1am and now it looks like it'll trim correctly.

JaBaT 01-25-2008 06:46 PM
sorry for my english:

how can i put Opening tag for highlighted domain markup and Closing tag for highlighted domain markup ??

I write:
HTML Code:
<span style='color:red'>  </span>
but nothing happend.

In Highlight domain list i write the site i want to highlight


Thanks


All times are GMT. The time now is 09:12 PM.
Page 8 of 11 « First 67 8 910 Last »
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01602 seconds
  • Memory Usage 1,840KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (2)bbcode_code_printable
  • (1)bbcode_html_printable
  • (1)bbcode_php_printable
  • (12)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (4)pagenav_pagelink
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (40)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • pagenav_page
  • pagenav_complete
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete